Listing of Claims : 

1 . (Currently Amended) An electronic voting method, comprising the steps of: 

obtaining from a signer apparatus, using according to a fair blind signature 
scheme, a digital signature (y ; ) of a data signal fa) generated from a voter 
apparatus, said data signal comprising [[a]] an encrypted vote (v ; ) of a voter; and 

establishing, at a trusted authority apparatus, a link between a given 
digitally signed data signal a data pair fa , y, ) comprising said data signal and said 
digital signature, and a signing session in which said digital oignaturo data pair (x, : . 
XiL was generated , the fair blind signature scheme permitting establishment of the 
link via a t racing protocol included in the fair blind signature scheme. rr.il said 
trustod authority apparatus being onablod to establish the link via a tracing 
protocol included in the fair blind Gchomo [[.]] 

2. (Currently Amended) The voting method of claim 1, wherein the fair blind signature 
scheme comprises a threshold fair blind signature scheme in which the digital signature is 
obtained generated by cooperation of a number t of n servers, where t < n. and where n-t + 1 
servers need to be honest, from a nub not nf n grrmp nf servers which form "tiH ngn»r nppa r atuc , 
the group of servers containing n servoro and th e sub set containing t servers, where t < » [[.]] 

3. (Currently Amended) The voting method of claim 1, wherein the data signal fa) 
corresponds to the encrypted vote fa) of the voter which is encrypted according to a first 
encryption scheme (E T m), said first encryption scheme being the encryption scheme of a first 
mix-net (TM) contained in a voter tallying vote-tallying module^,]] and tho mothod furthor 
comprises the stop of using said first mix not (TAf) to apply a deception oohomo (D m ) which is 
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of said first encryption scheme to said data signal fo) at said votor tallying module to 



4. (Currently Amended) The voting method of claim [[20]] 3, and further comprising the 



receiving from a voter apparatus, at a server module of said signer 
apparatus, a plurality of voter data (Id, G, e L . s, ) during a voting process, one of 
said plural voter data (Id L C„ e L , s i) comprising a signed blinded encrypted data 
(eh corresponding to the encrypted vote (vh of a respective voter (v). said vote 
being enc rypted according to the first encryption scheme (E t m\ blinded by said 
voter, and digitally signed by said voter: 

when the voting process has ended, publishing a voter data list (La Ji of all 
voter data received from the voter apparatus; 

during the voting process, receiving at a ballot-box module, from the voter 
apparatus, a plurality of ballot data (Id;. C , c. a h, one of said plural ballot data 
comprisin g a signed encrypted data signal fori, said signed encrypted data signal 
(ah corresponding to the data signal (xh of a respective voter encrypted according 
to a second encryption scheme (Em) of a second mix-net (M) contained in a vote- 
randomizing module, and digitally signed by said signer apparatus: 

verifying the signature of said signed encrypted data signal (07 ); 

when the voting process has ended, publishing a ballot data list (Lm \ of all 
ballot data having a valid voter signature: 

receiving, by a ballot-order-randomizing module, a batch of encrypted 
data signals (q) from said ballot-box module when the voting process has ended. 
said encrypted data signals being in a first order within said batch of encrypted 




=[[•]] 



steps of: 
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data signals (c,);[[,]] each encrypted data signal fa) comprising data encrypted 
according to a second encryption scheme (E M ) and said data including a 
respective data signal fa), the encrypt e d data signal fa) including the vote fa) of 
the voter subjected to plural levels of encryption [[;]] 

retrieving, m by said ballot-order-randomizing module, in said batch of 
encrypted data signals (cj ). each respective data pair fa v,) signal fa) from the 
respective encrypted data signal fa) in said batch of enoryptod data signals fa ) by 
applying a second decryption scheme (D M ) which is an inverse of said second 
encryption scheme (E M ); 

outputtin g, by said ballot-order-randomizing module, the retrieved data 
signals fa) for said batch of encrypted data signals fa ) a data-pair list (L) of said 
retrieved data pairs fa. W) in a second order which is different efder from said 
first order; and 

receiving, by said vote-tallying module, said retrieved data signals fa ) 
pairs fa , W) in said different second order. 

5. - 8. (Canceled) 

9. (Currently Amended) The voting method of claim 1 , further comprising the steps of: 
receiving said data signal fa) to be digitally signed for the digital signature 




according to said fair blind signature scheme at a server module of said signer 
apparatus, said data signal fa) comprising the vote fa) selected by the voter 
said vote fa) being encrypted according to a first encryption scheme (E m ), 
blinded according to said fair blind signature scheme and digitally signed 
according to a digital signature scheme of said voter; 
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verifying, by said server module, that the digital signature (si) of the 
digitally signed in tho received data signal is valid; 

in cases where the verifying step confirms that the digital signature in the 
data signal received by said server module is valid, digitally signing by said server 
module digitally signs the blinded encrypted vote (e,) according to said fair blind 
digital scheme and outputs outputting by said server module a digitally-signed 
message (S^e,)); 

unblinding the digitally-signed message G&sfo)) to yield said digital 
signature (y ( ) of the data signal (x,); 

encrypting said data signal (x,) and said digital signature 0/) of the data 
signal thereof according to a second encryption scheme (E M ) to produce an 
encrypted data signal (c,); and 

signing said encrypted data signal (c,) according to the digital signature 
scheme of the voter 

10. (Currently Amended) An electronic voting system comprising: 

a plurality of voter modules each including a first processor; and 
an admin server module including a second processor; 
wherein the first processor[[, a]] of said plural voter modules module and 
the second processor in the admin server module cooperate during a respective 
signing session in application of a fair blind signature scheme to obtain, from said 
admin server module, a digital signature (>,) of a data signal fo) from said one of 
said plural [[a]] voter modules modulo , said data signal fa) comprising a 
respective vote (v/) of a voter, said fair blind signature scheme having a tracing 
protocol which enables a trusted authority apparatus to establish a link between a 



given digitally-signed data signal and a signing session in which said digital 
signature was generated. 

1 1 . (Previously Presented) A voter module including a first processor configured to 
cooperate with a second processor in an admin server module during a respective signing session 
in application of a fair blind signature scheme to obtain, from said admin server module, a digital 
signature (y t ) of a data signal (*,) from the voter module, said data signal comprising a vote 
(v,) of a voter, said fair blind signature scheme having a tracing protocol which enables a trusted 
authority apparatus to establish a link between a given digitally-signed data signal and a signing 
session in which said digital signature was generated. 

12. (Currently Amended) A computer readable medium oncoded with a A computer 
program execut e d by a computer that causes a executing on a first processor which, when used 
on a computer apparatus, causes the first processor to cooperate with a second processor in an 
admin server module during a respective signing session in application of a fair blind signature 
scheme, the computer program comprising: 

program code for obtaining, from said admin server module, a digital 
signature (y,) of a data signal (*,), said data signal (*,) comprising a vote (v,) of a 
voter; and 

program code for establishing, at a trusted authority apparatus, a link 
between a given digitally-signed data signal and a signing session in which said 
digital signature was generated, said trusted authority apparatus being enabled to 
establish the link via a tracing protocol included in the fair blind scheme. 



13. (Previously Presented) A voting system admin server module including a first 
processor configured to cooperate with a second processor in a voter module during a respective 
signing session in application of a fair blind signature scheme to obtain, from said admin server 
module, a digital signature (y ; ) of a data signal (x,) from said voter module, said data signal (x,) 
comprising a vote (v,-) of a voter, said fair blind signature scheme having a tracing protocol which 
enables a trusted authority apparatus to link a given digitally-signed data signal with a signing 
session in which said digital signature was generated by said admin server module. 

14. (Currently Amended) A computer readable medium encoded with a A computer 
program that causes a executing on a first processor which, when used on a computer apparatus, 
causes the first processor to cooperate with a second processor in a voter module during a 
respective signing session in application of a fair blind signature scheme, the computer program 
comprising: 

program code for obtaining a digital signature (y ; ) of a data signal (x,) from 
said voter module, said data signal (x,) comprising a vote (v ; ) of a voter; and 

program code for establishing, at a trusted authority apparatus, a link 
between a given digitally-signed data signal and a signing session in which said 
digital signature was generated, said trusted authority apparatus being enabled to 
establish the link via a tracing protocol included in the fair blind scheme. 

15. (Previously Presented) A voting system ballot-order-randomizer module comprising a 
processor configured to provide: 

input means for receiving a batch of cast votes, each cast vote comprising 
an encrypted data signal (c,) comprising data (x,) indicative of a respective vote 
(v ( ) of a voter which is digitally signed according to a fair blind signature scheme, 



said fair blind signature scheme having a tracing protocol which enables a trusted 
authority apparatus to establish a link between a given digitally-signed data signal 
and a signing session in which said digital signature was generated, each 
encrypted data signal (c,) being encrypted according to a predetermined 
encryption scheme (E M ); 

a mix-net (M) for decrypting said encrypted data signals (c,) by applying a 
decryption scheme (D M ) which is an inverse of said predetermined encryption 
scheme (E M ); and 

output means for outputting the decrypted signals of said batch of cast 
votes in an order different from the order of corresponding encrypted data signals 
in said batch of cast votes. 

16. (Currently Amended) A comput e r readable medium encoded with a A computer 
program executing on a processor which, when used on a computer apparatus, that causes a 
voting system ballot-order-randomizer to randomize a batch of cast votes, the computer program 
comprising: 

program code for receiving, at an input means, a batch of cast votes, each 
cast vote comprising an encrypted data signal (c ( ) comprising data (jt,) indicative 
of a respective vote (v,) of a voter which is digitally signed according to a fair 
blind signature scheme, said fair blind signature scheme having a tracing protocol 
which enables a trusted authority apparatus to establish a link between a given 
digitally-signed data signal and a signing session in which said digital signature 
was generated, each encrypted data signal (c,-) being encrypted according to a 
predetermined encryption scheme (E M ); 



program code for decrypting, at a mix-net (M), said encrypted data signals 
(d) by applying a decryption scheme (D M ) which is an inverse of said 
predetermined encryption scheme (E M ); and 

program code for outputting, at an output means, the decrypted signals of 
said batch of cast votes in an order different from the order of corresponding 
encrypted data signals in said batch of cast votes. 



17. (Previously Presented) A voting system tallying module comprising a processor 
configured to provide: 

input means for receiving cast votes, each cast vote comprising a data 
signal (xi) digitally signed according to a fair blind signature scheme, said fair 
blind signature scheme having a tracing protocol which enables a trusted authority 
apparatus to establish a link between a given digitally-signed data signal and a 
signing session in which said digital signature was generated, each data signal (xi) 
comprising a respective vote (v,) of a voter which is encrypted according to an 
encryption scheme (E T m)\ and 

a mix-net (M) for decrypting said encrypted votes (v,) by applying a 
decryption scheme (D T m) which is an inverse of said encryption scheme (E TM ). 



18. (Currently Amended) A computer readable m e dium oncoded with a A computer 
program executing; on a processor which, when used on a computer apparatus, feat causes 
tallying of cast votes, the computer program comprising: 

program code for receiving, at an input means, cast votes, each cast vote 
comprising a data signal (xi) digitally signed according to a fair blind signature 
scheme, said fair blind signature scheme having a tracing protocol which enables 



a trusted authority apparatus to establish a link between a given digitally-signed 
data signal and a signing session in which said digital signature was generated, 
each data signal fa) comprising a respective vote fa) of a voter which is 
encrypted according to an encryption scheme (E T m); and 

program code for decrypting, at a mix-net (A/), said encrypted votes fa) by 
applying a decryption scheme (D T m) which is an inverse of said encryption 
scheme (E T m)- 

19. (Canceled) 

20. (Currently Amended) The voting method of claim [[19]] 3, further comprising the 
of: 

receiving from a voter apparatus, at a server module of said signer 
apparatus, a plurality of voter data (Id, C„ e„ s L ) during a voting process, one of 
said plu ral voter data comprising a signed blinded encrypted data (e L ) 
corresponding to the encrypted vote fa) of a respective voter, said vote being 
encrypted according to the first encryption scheme, blinded by said voter, and 
digitally signed by said voter. 

when the voting process has ended, publishing a voter data list (L^) of all 
voter data received from the voter apparatus: 

setting a time period during which voting is authorized; 

receiving from the voter apparatus, at a ballot-box module. 
communicating a plurality of encrypt e d ballot data signals fa ) (Id b C k c > oft, one 
of said ballot data comprising a signed to a ballot box modulo, each ef-said plnrnl 
encrypted data signal (oft signals fa) including data from corresponding to the 
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data signal (xi) of a respective voter encrypted (cj) according to a second 
encryption scheme (Em) of a second mix-net (M) contained in a vote-randomizing 
module, indicative of the vote (v t ) of said voter and digitally-signed by said signer 
apparatus; an4 

outputting, by said ballot box module, said onorypted data signals (c») to 
said vote tallying module after expiration of the time period in which voting is 

verifying the signature of said signed encrypted data signal (c): and 
when the voting process has ended, publishing a ballot data list (L™) of all 
ballot data having a valid voter signature . 

21. (Canceled) 

22. (New) The voting method of claim 3, comprising the steps of: 

receiving from a voter apparatus, at a server module of said signer 
apparatus, a plurality of voter data (Id it Q, e b si) during a voting process, one of 
said plural voter data comprising a signed blinded encrypted data (e ( ) 
corresponding to the encrypted vote (v,) of a respective voter, said vote being 
encrypted according to the first encryption scheme, blinded by said voter, and 
digitally signed by said voter, 

publishing a voter data list (L AS ) of all voter data received from the voter 
apparatus when the voting process has ended. 

23. (New) The voting method of claim 20, further comprising the steps of: 
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comparing, by the server module of said signer apparatus, the voter data 
list (L AS ) of all voter data received from the voter apparatus with the ballot data 
list (L B b) of all ballot data; and 

if there is an entry in the voter data list (L AS ) from which there is no 
corresponding entry in the ballot data list (L BB ), applying a signature tracing 
algorithm of the fair blind signature scheme to identify the data pair (x u yi) which 
is in the voter data list (L AS ) and which has no corresponding entry in the ballot 
data list (L BB ); and 

recording the identified data pair (x u yi) in a revocation list (RL) containing 
ballots that have been rejected. 

24. (New) The voting method of claim 23, further comprising the steps of: 

receiving, by said vote-tallying module, a data pair list (L) of retrieved 
data pairs (x b yi); 

checking, at the vote-tallying module, said data pair list (L) of data pairs 
(xu yi) for duplicate entries; 

if there are no duplicate entries, checking a validity of digital signatures 
(yi) of data pairs of the data pair list (L); 

if the signature of data pairs of the data pair list (L) is valid, comparing 
data pairs (x u yi) of the data pair list (L) with entries of the revocation list (RL); 

if there is no data pair of the data pair list (L) in the revocation list (RL) 
decrypting the data signal (xi) of the data pairs (x h yi) by applying the decryption 
scheme (D T m) which is an inverse of said first encryption scheme (E M ); 

tallying decrypted data signals (vO corresponding to votes of the voters; 

and 
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publishing a voting result. 



25. (New) The voting method of claim 24, further comprising, when duplicate entries are 
found, the steps of: 

prompting the particular mix-server (Mj) to generate a zero-knowledge 
proof of correctness using the data pair (x„ y t ) associated to a duplicate entry as 
input to a back-tracing protocol; and 

if a particular mix-server generates a proof of knowledge, revealing an 
identity of a misbehaving voter by implementing a back-tracing algorithm of a 
randomizing mix-net, using the data pair (x h yi) associated to the duplicate entry 
as input to the back-tracing protocol; 

adding the data pair to the revocation list; and 

removing the data pair from a list of votes to be counted. 

26. (New) The voting method of claim 24, further comprising, when an invalid signature 
is found, the steps of: 

prompting a particular mix-server (My) to generate a zero-knowledge proof 
of correctness using a data pair (x„ yi) associated to the invalid signature as input 
to a back-tracing protocol; 

if the particular mix-server generates a proof of knowledge, revealing an 
identity of a misbehaving voter by implementing a back-tracing algorithm of a 
randomizing mix-net, using the data pair associated to the invalid signature as 
input; and 

adding the data pair to the revocation list; and 
removing the data pair from a list of votes to be counted. 
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27. (New) The voting method of claim 24, further comprising, when a data pair of 
data pair list is found in the revocation list, the steps of: 

prompting a particular mix-server (MJ) to generate a zero-knowledge proof 
of correctness using said data-pair (x h yi) found in the revocation list as input to a 
back-tracing protocol; 

if the particular mix-server generates a proof of knowledge, revealing an 
identity of a misbehaving voter by implementing a back-tracing algorithm of a 
randomizing mix-net, using said data pair found in the revocation list as input; 

adding said data pair to the revocation list; and 

removing said data pair from a list of votes to be counted. 

28. (New) An electronic voting method, comprising: 

obtaining from a signer apparatus, according to a fair blind signature 
scheme, a digital signature (yi) of a data signal (x ( ) generated from a voter 
apparatus, said digital signal comprising an encrypted vote (yi) of a voter; 

wherein the fair blind signature scheme includes a tracing protocol which 
can be implemented, at a trusted authority apparatus, to establish a link between a 
data pair (x h yi) comprising said data signal and said digital signature, and a 
signing session in which said data pair (x h yi) was generated. 
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